Context Navigation

← Previous Changeset
Next Changeset →

Changeset 116335 in webkit

Timestamp:

May 7, 2012 12:01:31 PM (12 years ago)

Author:

abarth@webkit.org

Message:

Test the combination of CSP and srcdoc
https://bugs.webkit.org/show_bug.cgi?id=85778

Reviewed by Eric Seidel.

This test ensure that <iframe srcdoc> can't be used to bypass
Content-Security-Policy restrictions on script-src. We already have the
correct behavior. This test just verifies it.

http/tests/security/contentSecurityPolicy/srcdoc-doesnt-bypass-script-src-expected.txt: Added.
http/tests/security/contentSecurityPolicy/srcdoc-doesnt-bypass-script-src.html: Added.

Location:

trunk/LayoutTests

Files:

: 2 added
: 1 edited

ChangeLog (modified) (1 diff)
http/tests/security/contentSecurityPolicy/srcdoc-doesnt-bypass-script-src-expected.txt (added)
http/tests/security/contentSecurityPolicy/srcdoc-doesnt-bypass-script-src.html (added)

Legend:

: Unmodified
: Added
: Removed

trunk/LayoutTests/ChangeLog

-                      r116331
+                      r116335
+-05-07  Adam Barth  <abarth@webkit.org>
+        Test the combination of CSP and srcdoc
+        https://bugs.webkit.org/show_bug.cgi?id=85778
+        Reviewed by Eric Seidel.
+        This test ensure that <iframe srcdoc> can't be used to bypass
+        Content-Security-Policy restrictions on script-src. We already have the
+        correct behavior. This test just verifies it.
+        * http/tests/security/contentSecurityPolicy/srcdoc-doesnt-bypass-script-src-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/srcdoc-doesnt-bypass-script-src.html: Added.
 -05-07  Pravin D  <pravind.2k4@gmail.com>

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 116335 in webkit

Legend:

trunk/LayoutTests/ChangeLog

Download in other formats: